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1 

STORAGE MEDIA 

This invention relates to storage media and is particularly, but not exclusively, 
related to storage media used in communications devices and communications 
5 devices including such storage media. In one embodiment, it relates to storage 
media used in mobile communications devices, such as mobile telephones. 

Mobile communications devices often contain smart cards. The smart cards are 
used to carry out particular processing tasks. Smart cards usually have memory 
10 means and processor means. The memory means often carries personal and/or 
secret data which can, for example, identify a particular user or enable access to 
services, data and otherwise secure locations. Smart cards are particularly suited 
to holding information securely because the information is stored in hardware. 
Hardware is more tamper-resistant than software. 

15 

A smart card and a device which is used to read it, for example a communications 
device, communicate by means of Application Protocol Data Units (APDUs). 
Commands sent to a smart card are sent in the form is a Command-APDUs (or C- 
APDUs) which may activate a response from a card. APDUs are defined in the 
20 relevant smart cards standards such as those issued by ISO/IEC. Command- 
APDUs are used in obtaining information from smart cards. 

Generally smart cards can be removed from the devices in which they are used. 
An example of a smart card is a Subscriber Identity Module (SIM) card which is 
25 currently used in mobile telephones. Other types of SIM cards have been 
• proposed, for example for third generation systems, such the Universal Mobile 
Telephone System (UMTS). Such third generation SIM cards are referred to as 
USIMs. 

30 Modern communications devices, particularly mobile communications devices, are 
increasingly being used for a diverse range of activities in addition to conventional 
telephony. These activities include information gathering, particularly from the 
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Internet, conducting transactions, such as the purchase of goods and/or services 
, or using a banking service. Mobile and static communications devices exist which 
are not used for voice telephony but are primarily used for various types of data 
communication or exchange, 

5 

As communications devices are being used for a more diverse range of services, 
they need a variety of application programs to provide and interact with these 
services. Conveniently, application programs are stored on a storage medium in 
the communications devices, for example SIMs. 

10 

Since the services provided by the application, programs are valuable it is 
desirable to restrict access so that they can only be accessed by authorised users. 
Access is usually restricted by means of a personal identification number code, a 
so-called PIN code, which needs to be input into the terminal to allow access to 
15 the relevant application program. 

It has been proposed to provide a plurality of application programs for a 
communications terminal on the same storage medium and provide a separate 
PIN for each application program. A disadvantage of this approach is that a user of 
20 the plurality of application programs needs to remember or record a plurality of 
PIN codes. 

WO 98/32098 proposes storing a number of different application programs on a 
SIM card for a communications terminal. It further proposes that a user in 

25 possession of several SIM cards can switch between them to use different 
applications in the communications terminal. Not only is it inconvenient for a user 
to carry around a number of SIM cards, but it is also inconvenient to exchange one 
for another in the communications terminal, especially since each will probably 
have associated with it its own PIN code. In can be difficult for a user to remember 

30 which PIN code corresponds to which SIM card. 
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According to a first aspect of the invention there is provided a storage medium 
containing a plurality of application programs the application programs being 
grouped into a plurality of application program groups group selection means 
being provided to determine the application program groups to which a user has 
5 access. 

The user may have access only to a single application program group. The user 
may have access to more than one application program group. 

10 An advantage of the invention is that a user of the storage medium is able to 
select a plurality of application programs by using one application selection 
procedure, for example one card holder verification, and so needs fewer access 
codes, and possibly only one. Furthermore, it avoids the need to provide separate 
storage media to enable a user to obtain access to separate application program 

15 groups. 

Preferably the selection means is an application program. Preferably the selection 
means enables a user to have access to the application programs of at least one 
particular application program group and not to the applications of at least one 
20 other particular application program group. However, certain users or certain 
classes of users may have access to all of the application program groups. In this 
way certain application programs, such as those allowing use of e-money, can be 
hidden from users not having access.to them and also simply not be selectable by 
a user, for example via a user interface. 

25 

Preferably the application program groups have a degree of overlap with at least 
one particular application program being contained in more than one application 
program group. 

30 Preferably the storage medium is insertable into and removable from a 
communications terminal. Preferably the storage medium is a smart card. It may 
be a SIM card. 
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If the application is applied to a SIM card, there is no need to change its 
communication protocol by adding new C-APDU commands. All that is required is 
simply to include the selection means. 

5 

Preferably the storage medium contains a directory which is up-dated when a user 
selects a particular application program group. Preferably it is up-dated to contain 
identifiers of application programs in the most recently selected application 
program group. 

10 

According to a second aspect of the invention there is provided an application 
program for selecting between a plurality of application program groups. 

According to a third aspect of the invention there is provided a communications 
15 terminal comprising a storage medium, the storage medium containing a plurality 
of application programs the application programs being grouped into a plurality of 
application program groups group selection means being provided to determine 
the application program groups to which a user has access. 

20 Preferably the communications terminal is mobile. Most preferably it comprises a 
mobile telephone. 

According to a fourth aspect of the invention there is provided a method of 
selecting an application program group from a storage medium containing a 
25 plurality of application programs comprising the steps of: 

grouping the application programs into a plurality of application program groups; 
providing group selection means to determine the application program groups to 
which a user has access; 

carrying out a verification procedure to confirm access to at least one of the 
30 application program groups; and 

allowing the user access to at least one of the application program groups. 



WO 00/69183 PCT/FI00/004I6 

5 

At least one application program group may contain only one application program. 

According to a fifth aspect of the invention there is provided a storage medium 
containing: 

5 at least one application program; 

a file structure having a plurality of data files at least some of the data files 

containing data for use in operation of the application program; and 

selection means to determine the data files which are used by the application 

program, 

10 in which the selection means is responsive to access information which is provided 
by a user and determines the data files which the application program uses on the 
basis of the access infonmatioh. 

Preferably the data files are elementary files. 

15 

According to a sixth aspect of the invention there is provided a method of selecting 
data files stored on a storage medium, the method comprising the steps of: 
storing a file structure having a plurality of data files on the storage medium at 
least some of the data files containing data to be used in operation of an 
20 application program; 

providing selection means to determine the data files which are to be used by the 
application program; 

receiving access information from a user; 

using the selection means to determine the data files which the application 
25 program is able to use on the basis of the access information. 

Preferably the method also comprises the step of storing the application program 
on the storage medium. 

30 Preferably the method also comprises the step of storing the selection means on 
the storage medium. 
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According to a seventh aspect of the invention there is provided a data 
transmission device having a storage medium, the storage medium containing: 
at least one application program which is run by the data transmission device to 
carry out application tasks; 
5 a file structure having a plurality of data files at least some of the data files 
containing data for use in operation of the application program; and 
selection means to determine the data files which are useable in operation of the 
data transmission device, 

in which the selection means is responsive to access information which is provided 
10 by a user and determines the data files which are useable in operation of the data 
transmission device on the basis of the access information. 

According to an eighth aspect of the invention there is provided a method of 
selecting data files stored on a storage medium, the method comprising the steps 
15 of: 

storing a file structure having a plurality of data files on the storage medium at 
least some of the data files containing data to be used in operation of an 
application program to carry out application tasks; 

providing selection means to determine the data files which are to be involved in 
20 use of the storage medium; 

receiving access information from a user; 

using the selection means to determine the data files which are to be used by the 
storage medium on the basis of the access information. 

25 The application program may be able to carry out different functions depending on 
the data files to which it has access. The accessible data files may enable it to 
provide telephony or data transfer services, for example GSM, UMTS and/or WAP 
services. The functions may not be restricted to one particular type of service, for 
example telephony or data transfer, but may include other services related to e- 

30 money or e-commerce. 
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In this way, an apparent file structure of data files which is presented as a result of 
a user providing first access information may be different to another apparent file 
structure of data files which is presented as a result of a user providing second 
access information. In this way, the file structure of data files which are accessible 
5 to an application program is modified to present different data files depending on 
the access information which the user provides. 

In one embodiment of this aspect, there may be a plurality of application programs 
■ j contained in the storage medium which use at least some data files in common. In 
10 this case, the access information may change the data files which are accessible 
to at least one of the application programs. This may involve reducing the number 
of data files to which the application program has access or determining that the 
application program has access to one particular data file of a certain type rather 
than another particular data file of that certain type. 

J5 

The invention makes it possible to hide application programs so they are not 
visible to the user. If the storage medium is a SIM card this allows the provision of 
a plurality of application programs to provide services, only one or some of which 
are subscribed to by the user. If the user at a later time subscribes to another 
20 service, he can be provided with access to it, for example by a service provider 
giving the user a suitable password allowing access to a suitable profile. 

Another situation in which the invention could be applied is if the user has different 
profiles for different kinds of use. For example, the user may have a profile which 
25 is used for work related matters and a profile which is used for private related 
matters. If the application programs relate to sen/ices for which payment is made, 
this provides a straightforward billing arrangement. 

An embodiment of the invention will now be described by way of example only with 
30 reference to the accompanying drawings in which: 
Figure 1 shows a communication device; 
Figure 2 shows parts of the device of Figure 1 in greater detail; 
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Figure 3 shows a complete file structure; 

Figure 4 shows a selected file structure; and 

Figure 5 shows a procedure for selecting a particular file structure. 

5 Figure 1 shows a mobile terminal 10 comprising a mobile telephone. The mobile 
terminal 10 comprises a display 12, transmission and receiving means 14 for 
transmitting and receiving radio signals, a digital signal processor (DSP) 16 for 
processing data and voice into and from the radio signals, a user input device 
such as a keypad or keyboard 18, a central processing unit (CPU) 20, the 

10 operation of which is controlled by an operating system program and memory 
means 22 for storing data and software to enable the device to operate. The 
memory means is used by the DSP 16 and the CPU 20. The mobile terminal also 
comprises a removable smart card such as a SIM card 24. The SIM card 24 
contains a number of selectable application programs which enable the mobile 

15 terminal to use a number of services including, but not limited to, 
telecommunications applications. The SIM card 24 and the applications present on 
it will be described in more detail in the following. 

If the terminal is available for use by a number of users, it may be desirable to 
20 provide different users with different levels of access, that is, for users to be able 
to access one, some or all of the services provided by the application programs. In 
this example, it may be desirable to prevent some users having access to an 
electronic money application program and to certain levels of communication 
application programs such as telecommunications services. 

25 

Figure 2 shows parts of the terminal of Figure 1 in greater detail. Contained within 
the mobile terminal 10 are software and interfaces for controlling the terminal so 
as to obtain access to relevant services. These are shown collectively by the 
numeral 26. They are in the mobile terminal 10 itself rather than on the SIM card 
30 24. Since the SIM card 24 needs to be used in the operation of the mobile terminal 
10, for example to provide data and to perform calculations and verifications, the 
software and interfaces 26 and the SIM card 24 are connected by a logical 
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connection 28. Figure 2 shows information exchange between corresponding 
functional blocks, for example application interfaces and the applications 
themselves. The software and interfaces 26 communicate over a suitable protocol 
such as T1. 

5 

Included within the software and interfaces 26 are cellular software programs 30, 
32, 34 and 36 which receive input from a user of the mobile terminal 10, interact 
with the SIM card 24 and control communication with telecommunications and 
other networks. The cellular software programs 30, 32, 34 and 36 communicate 

10 with corresponding applications on the SIM card 24 via application program 
interfaces (APIs) 38, 40, 42 and 44. For example co-operation between the cellular 
software programs and their corresponding applications could enable the user to 
have access to a telecommunications network providing Universal Mobile 
Telecommunications System (UMTS) services, GSM services or WAP services. 

15 The terminal could include other programs to provide other services such as 
electronic money. 

Provided among the software and interfaces 26 is software 46 and an application 
program interface 48 to enable the user to use a profile selection application (PSA) 
20 60 which is located on the SIM card 24. The PSA will be described in the following. 

The programs used to provide GSM and WAP services, for example programs 32 
and 36, may have access to an electronic money application on the SIM card 24 
via an electronic money program and an application program interface 34 and 42 
25 respectively. The electronic money application interface 42 is connected via an 
HTTP protocol stack 50 in an external computer 52 to the Internet 54. In other 
embodiments of the invention the mobile terminal may comprise a combined 
computer and mobile telephone which is able to communicate to the Internet 
directly. 

30 

WAP services could be presented to the user in the form of a browser so that the 
user can readily obtain content from Internet servers and elsewhere. 
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As shown in Figure 2 conventional telephony can occur via a telecommunications 
network 56. 

5 The SIM card 24 contains a file structure in which a master file 58 contains a 
number of applications, the PSA 60 referred to above, telecommunications 
applications such as UMTS 62, GSM 64 and WAP 68 and an electronic money 
application 66. The cellular software programs use the applications to perform the 
various services provided by the mobile terminal 10, for example registering with 
TO the network, setting up a call, carrying out encryption and conducting financial 
transactions. There is also a directory file 70 which is described below. 

The file structure present in the SIM card 24 is shown in greater detail in Figure 3. 
This comprises the master file 58 containing the applications. The applications 

15 comprise a number of dedicated files and elementary files. A dedicated (DF) file is 
a file which contains control information and, optionally, memory available for 
allocation. It may be the parent of elementary files and other dedicated files. An 
elementary file (EF) is a set a data units or records which share the same file 
identifier. It cannot be a parent of another file. In the Figure EFs are shown as 

20 single boxes and DFs are shown as double boxes. For the sake of simplicity the 
complete set of EFs and DFs are not shown for certain applications and other 
applications have no internal file structure present at all, although one will almost 
certainly be present. 

25 The master file 58 is a unique dedicated file representing the root of the file 
structure. Associated with the master file 58 is an EF referred to as a directory file 
(DIR) 70. The DIR 70 contains a list of applications supported by the SIM card 24 
and optional related data elements for application identification. These include the 
application identifier (AID), the application label, the path to a file, commands to 

30 perform (defined and described in ISO/IEC standards), discretionary data and the 
application template. The data elements are coded by abstract syntax notation 1 
(ASN.1) which is described and defined in ISO standards. The DIR and its 
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contents are defined and described in ISO/IEC standards. The DIR 70 is used by 
the master file 58 to enable the mobile terminal to use the applications in the SIM 
card 24. The mobile terminal needs to use the ASN.1 coded information is the DIR 
70 to obtain access to the applications. 

5 

As mentioned above, the PSA 60 is used to control access to the applications on 
the SIM card 24. The PSA 60 is a DF containing a number of EFs 72, 74, 76 and 
78 relating to separate application profiles. A profile is a defined set of application 
programs which are available for use by the mobile terminal 10 or its user. A 
10 profile may comprise a single application program, or some or all of the application 
programs available on the SIM card 24. If a profile is successfully accessed all of 
the application programs within it may be accessed. 

Each of the EFs within the PSA 60 relates to a separate profile and comprises a 
15 card holder verification (CHV) routine which needs to be successfully completed 
before access to the applications within the profile is allowed. 

A number of different profile configurations are possible. The following table sets 
out a number of such configurations: 



Profile number 


1 


2 


3 


4 


5 


6 


7 


8 


GSM 


X 






X 








X 


WAP 


X 






X 




X 


X 


X 


e-money 


X 










X 




X 


UMTS1 


X 










X 




X 


UMTS2 




X 






X 






X 


PSA 


X 


X 


X 


X 


X 


X 


X 


X 


Last selected application flag 




X 














Profile modification allowed 
















X 



Profiles 1 to 7 are user profiles permitting a user access to particular application 
programs. Several points should be noted about this table. The first point is that all 
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the profiles contain the PSA 60. The second point is that profile 8 allows access to 
all applications and also is able to modify the profiles. Someone having access to 
profile 8 can change the applications to which the other profiles have access. For 
example, profile 6 could be modified to also allow access to the GSM application. 
5 Profile 8 may be a profile accessible by a service provider or the owner of or entity 
responsible for the mobile terminal 10. The third point is that there is a flag 
indicating which was the most recently selected profile. 

As is described above, access to the application is determined through the list of 
10 applications supported by the SIM card 24 and data elements for application 
identification and selection. The SIM card 24 controls the.contents of the DIR 70 to 
correspond with the applications which are accessible in a particular profile. For 
example, if profile 2 has been selected, the DIR file will only contain the AIDs for 
UMTS2 and PSA, and if profile 6 is selected, the DIR file will only contain the AIDs 
15 for WAP, e-money, UMTS1 and PSA. The effect of this is presented schematically 
in Figure 4. If Figures 3 and 4 are compared it can be seen that some of the 
applications seem to have disappeared. This is because relevant data elements 
for their identification and selection have been made inaccessible in the DIR 70. 
This would be, for example, the AIDs of the "disappeared" applications. The 
20 underlying file Structure has not been modified, it is just that certain parts of it are 
now no longer accessible through the DIR 70. As a consequence, certain 
application programs can be hidden and not be available to the user or to the 
mobile terminal 24. 

25 In the file structure of Figure 3, certain of the EFs may be suitable for use by more 
than one application. This may be the case for telephone applications. For 
example, this could be an EF containing a telephone directory or containing an 
IMSI. In order for these to be common EFs, they need to be made available to a 
DF of another application. They can be accessed by another DF by providing links 

30 or shortcuts in the smart card's operating system. 
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It will be appreciated that as profiles are changed, the DIR 70 needs to be updated 
with new information, for example data elements for application identification and 
selection, which have previously been removed from that part of the DIR 70 which 
can be read by the mobile terminal 10, Therefore a memory location is provided on 
5 the SIM card 24 which has the relevant data for all of the applications on the SIM 
card 24. This can be an additional EF associated with and only accessible from 
the DIR 70. When CHV is successfully completed for a profile, the DIR 70 is 
updated with data so as to make available all of the applications in that profile. 

10 In one embodiment of the invention, a mobile terminal is to be used by a number 
of different users. Each of the users has a PIN code which allows access to a 
particular profile but not to other profiles. When the mobile terminal is switched on, 
it requests a PIN code and the user inputs his own PIN code. If the PSA is not 
visible to the user, the SIM card 24 identifies the profile to which the PIN code 

15 applies and carries out a card holder verification procedure. Once this is complete, 
the user is allowed access to the appropriate profile. It should be noted that the 
user interface appears to be normal and the user is not necessarily aware that 
profile selection has occurred or can occur. In an alternative embodiment, the PSA 
can be accessed by the user through a selection menu in the display 12 and 

20 profile selection can be a step which the user knowingly carries out. Of course, the 
user can only change the profile selection if he knows the correct PIN codes. 

Steps involved in the selection of a particular profile are described with reference 
to Figure 5. This shows the actions taken by, and the messages sent between, the 
25 user, the SIM card 24 and the network. 

The mobile terminal is switched on and it selects the PSA 60 from the SIM card 24 
in accordance with ISO/IEC 7816-5. Once selection of the PSA 60 has occurred, 
the user enters a PIN code and CHV is carried out by the mobile terminal 10 in 
30 accordance with ISO/IEC 7816-4. Once CHV has been carried out successfully 
and the PSA is selected and usable by the user, the user can select a particular 
profile. It is irrelevant whether the user knowingly or unknowingly selects a 
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particular profile since the transactions carried out between the mobile terminal 
and the SIM card are still the same. However, for the purposes of this part of the 
description it is assumed that the user knowingly selects a particular profile. 

5 Having obtained access to the PSA 60, the user selects a particular profile, 
typically from a menu, which causes the mobile terminal to select the appropriate 
new profile. Although in this embodiment of the invention, the user is then able to 
have access to the application programs within a particular profile, in another 
embodiment, further CHV procedures are required to obtain final access to each 
10 application program individually. 

In one embodiment, the mobile terminal transmits an identifier of the new profile to 
the network for synchronisation purposes between the mobile terminal and the 
network. In this embodiment, the network signals back to indicate whether the 
15 profile selection is allowed and correct. 

The mobile terminal selects the appropriate profile EF thus completing the mobile 
selection procedure. 

20 To put the applications into use, the mobile terminal terminates its connection to 
the network, and resets the SIM card. The SIM card responds with an answer to 
reset (ATR) and then the mobile terminal re-establishes its connection with the 
network. 

25 When a new profile is selected, the DIR 70 is up-dated so that it only shows the 
AIDs corresponding to those application programs of the selected profile. It is not 
necessary to modify the existing SIM interface of the mobile terminal. 

In an alternative embodiment there can be a common profile selection EF where 
30 desired user profile number is written. This method does not enable different CHV 
for profile selection and configuration. This embodiment can be arranged by 
having new C-APDU definitions. 
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Configuration of the profiles and access to them may be editable by the SIM card 
24 supplier, its owner or an entity otherwise responsible for the SIM card 24, such 
as a service provider. This allows an entity other than the user to add or remove 
5 application programs to and from, the profiles. Such an editable feature may be 
accessible through a CHV other than that of the user. 

In the preceding description} the communications terminal is a mobile terminal. 
However, in other embodiments it could be a stationary communication device 
10 such as a terminal in a network. Of course, in such a use the invention may be 
embodied in a smart card (or smart device) other than a SIM card. 

Of course, the skilled person will understand that the invention can be applied to 
devices other than communication devices. 

15 

It should be understood that although the invention has been defined and 
described in terms of apparatus, it can equally be considered to be a method. 

While preferred embodiments of the invention have been shown and described, it 
20 will be understood that such embodiments are described by way of example only. 
Numerous variations, changes and substitutions will occur to those skilled in the 
art without departing from the scope of the present invention. In one embodiment, 
application selection occurs other than through a directory file (DIR). Direct 
application selection may be performed by the use of the SELECT FILE command 
25 in which the AID is specified as the dedicated file name. If direct selection is 
provided, then the mobile terminal may explicitly select an application to be 
performed without previously checking that the relevant application is present on 
the SIM card 24. If it is not present, the SIM card will reject the command. If it is 
present, the SIM card will execute the command. If direct selection is used, the file 
30 address is built into the mobile terminal. Accordingly, it is intended that the 
following claims cover all such variations as fall within the spirit and scope of the 
invention. 
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Claims 

1. A storage medium containing a plurality of application programs the application 
programs being grouped into a plurality of application program groups group 

5 selection means being provided to determine the application program groups to 
which a user has access. 

2. A storage medium according to claim 1 in which the selection means is an 
application program 

10 

3. A storage medium according to claim 1 or claim 2 in which the selection means 
enables a user to have access to the application programs of at least one 
particular application program group and not to the applications of at least one 
other particular application program group. 

15 

4. A storage medium according to any of claims 1 to 3 in which certain users or 
certain classes of users may have access to all of the application program 
groups. 

20 5. A storage medium according to any preceding claim in which the application 
program groups have a degree of overlap with at least one particular 
application program being contained in more than one application program 
group. 

25 6. A storage medium according to any preceding claim in which the storage 
medium is insertable into and removable from a communications terminal. 

7. A storage medium according to any preceding claim in which the storage 
medium is a smart card. 

30 

8. A storage medium according to any preceding claim which is a subscriber 
identity module. 
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9. A storage medium according to any preceding claim in which the storage 
medium comprises a directory which is up-dated when a user selects a 
particular application program group. 

5 

10. A storage medium according to claim 9 in which the directory is up-dated to 
contain identifiers of application programs in the most recently selected 
application program group. 

10 11 .An application program for selecting between a plurality of application program 
groups of application programs, 

12. A communications terminal comprising a storage medium, the storage medium 
containing a plurality of application programs the application programs being 

15 grouped into a plurality of application program groups group selection means 
being provided to determine the application program groups to which a user 
has access. 

13. A communications terminal according to claim 12 in which the communications 
20 terminal is mobile. 

14. A communications terminal according to claim 13 which comprises a cellular 
telephone. 

25 15. A method of selecting an application program group from a storage medium 
containing a plurality of application programs comprising the steps of: 
grouping the application programs into a plurality of application program 
groups; 

providing group selection means to determine the application program groups 
30 to which a user has access; 

carrying out a verification procedure to confirm access to at least one of the 
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application program groups; and 

allowing the user access to at least one of the application program groups. 
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ME: 



5. User 



1. select PSA 



2. selection OK, CHV needed 



3. enter PIN 



4. CHV completed, PSA selected OK 



selects new profile #n 



6. select DF#n 



7. OK 



8. check profile #n selection (optional) 



10. select EF 



11. OK 



12. disconnect 



13. reset SC 



14. ATR (reset re-configures SC to new profile), 



15. connect 



Network: 



9. OK (optional) 



Fig. 5 



